Security Advisory

CVE-2016-1834

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-05-20 10:00:00

Last updated 2025-12-04 17:15:15

Assigner apple

State PUBLISHED

Description

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

← Browse all CVEs View on cve.org ↗